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(54) Encryption for modulated backscatter systems 



(57) The present invention enables a Tag and inter- 
rogator to exchange proprietary information using Mod- 
ulated BackScatter (MBS) technology. This invention 
discloses a method for encrypting the RFID user's PIN 
and thereby making the interception and the subse- 
quent illegal use of RFID accounts at least as difficult as 
a present day ATM cards. For example, the encryption 

FIG. 1 



method can be based upon the US Digital Encryption 
Standard (DES), either first or third level. The Tag's per- 
sonal encryption key is only known by the financial data- 
base and the RFID Tag. This method can be applied to 
any type of financial, debt, identification, or credit card. 
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Description 

Field of the Invention 

This invention relates to wireless communication 
systems and, more particularly, to a wireless communi- 
cation system which uses digital encryption encoding to 
ensure secure transmission of private information using 
modulated backscatter technology. 



START Related subject matter is disclosed in the 
following U.S. patent applications assigned to the 
Assignee hereof: U.S. patent application Ser. No. 
08/571004, filed December 12, 1995, by MacLellan et 
al. and entitled "Enhanced Uplink Modulated Backscat- 
tering System;" U.S. patent application Ser. No. 
08/492174, filed June 19, 1995, by MacLellan et al. and 
entitled "Full Duplex Modulated Backscattering Sys- 
tem;" and U.S. patent application Ser. No. 08/492173, 
filed June 19, 1995, by Shober et al. and entitled "Dual 
Mode Modulated Backscatter System." END Related 
subject matter is disclosed in the following applications 
filed concurrently herewith and assigned to the same 
Assignee hereof: U.S. patent applications "Shielding 
Technology In Modulated Backscatter System," Serial 
No. ; "QPSK Modulated Back- 
scatter System," Serial No. . ; 

"Modulated Backscatter Location System," Serial No. 

; "Antenna Array In An RFID 

System," Serial No. ; "Subcarrier 

Fluency Division Multiplexing Of Modulated Backscatter 
Signals." Serial No ; "IQ Com- 
biner Technology In Modulated Backscatter System," 

Serial No. ; "In-Building Personal 

Pager And Identifier," Serial No ; 

"In-Buiiding Modulated Backscatter System." Serial No. 
j "Inexpensive Modulated Back- 
scatter Reflector," Serial No. . ; 

"Passenger, Baggage, And Cargo Reconciliation Sys- 
tem," Serial No. , Related subject 

matter is also disclosed in the following applications 
assigned to the same assignee hereof: U.S. patent 
application 08/504188, entitled "Modulated Backscatter 
Communications System Having An Extended Range"; 
U.S. Patent Application Serial No 08/492,173. entitled 
"Dual Mode Modulated Backscatter System,"; U.S. Pat- 
ent Application Serial No. 08/492.174, entitled "Full 
Duplex Modulated Backscatter System,"; and U.S. Pat- 
ent Application Serial No. 08/571,004. entitled 
"Enhanced Uplink Modulated Backscatter System." 

Background of the Invention 

Radio Frequency IDentification (RFID) systems are 
used for identification and/or tracking of equipment 
inventory, or living things. RFID systems are radio com- 



munication systems that communicate between a radio 
transceiver, called an Interrogator, and a number of 
inexpensive devices called Tags. In RFID systems, the 
Interrogator communicates to the Tags using modulated 
5 radio signals, and the Tags respond with modulated 
racfio signals. The Interrogator first transmits an ampli- 
tude modulated signal to the Tag. Then, the Interrogator 
transmits a Continuous-Wave (CW) radio signal to the 
Tag. The Tag then modulates the CW signal, using Mod- 
10 ulated BackScattering (MBS), where the antenna is 
electrically switched, by the Tag's modulating signal, 
from being an absorber of RF radiation to being a reflec- 
tor of RF radiation; thereby encoding the Tag's informa- 
tion onto the CW radio signal. The Interrogator 
is demodulates the incoming modulated radio signal and 
decodes the Tag's information messaga 

Over the next decade an enormous growth in the 
number and proliferation of RFID applications is 
expected. Many emerging applications will be of a finan- 
ce cial nature and will require, for example, that a user's 
Personal Identification Number (PIN) cannot be inter- 
cepted by a hostile eavesdropper. The cellular phone 
industry is presently under siege by network pirates and 
industry losses are quoted to be approaching one billion 
25 dollars annually. So as not to repeat this particular fail- 
ing of the cellular industry, RFID system designers 
should consider network security a top priority. There 
are three major security issues when transferring data 
in a wireless system: 

30 

1 . A legitimate Tag and a legitimate Interrogator are 
involved in a communication session transferring 
sensitive data that a hostile eavesdropper would 
like to intercept 

35 2. A legitimate Interrogator would be queried by a 
fraudulent Tag trying to obtain service, such as to 
acquire data stored in the network or in an Applica- 
tion Processor. (This is similar to the case of some- 
one stealing cellular air time.) 

40 3. A legitimate Tag would be queried by a fraudulent 
Interrogator trying to acquire data stored in the 
Tag's memory (like stealing the PIN number from a 
cellular telephone). 

45 This invention discloses a method for encrypting 
both the data in a Tag's memory and the data stored in 
an Application Processor, where by transferring only 
ciphered data between network endpoints. one can 
thwart all three security breaches outlined above. This 

so method encrypts the RFID user's PIN and therefore 
mates the interception and the subsequent illegal use 
of RFID data at least as difficult as for present day ATM 
cards. The encryption method can be based upon the 
US Digital Encryption Standard (DES), either first or 

55 third level. The Tag's personal encryption key is only 
known by the f inancial database and the RFID Tag. This 
method can be applied to any type of financial, debt, 
identification or credit card. 
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Summary o f the invention 

In accordance with the present invention, a MBS 
radio communication system comprises an Interrogator 
which generates a first modulated signal by modulating s 
a first information signal onto a radio carrier signal. The 
Interrogator transmits the first modulated signal to at 
least one remote Tag of the system. The remote Tag 
receives and processes the received first modulated 
signal. A second information signal backscatter-modu- 10 
lates the reflection of the first modulated signal, the 
reflected signal being a second modulated signal. The 
Interrogator receives and demodulates the second 
modulated signal to obtain the second information sig- 
nal. In one embodiment demodulation utilizes a homo- is 
dyne detector and the first modulated signal as the local 
oscillator source for the homodyne detector. In another 
embodiment, the second information signal is modu- 
lated onto a subcarrier, which is then backscatter-mod- 
ulated onto the first modulated signal. The interrogator 20 
communicates the second information signal to an 
Application Processor; the second information signal 
contains private information known only to the Tag and 
to the Application Processor. Both the Tag and Applica- 
tion Processor use digital encryption techniques to 25 
cipher the end-to-end communications of the private 
information. 

The present cfisclosure outlines three levels of 
security for which, depending on the RFID application, 
an Application Processor, at least one Interrogator, and 30 
at least one Tag can exchange information: The first 
level is the "Normal" mode, where a Tag and Interroga- 
tor exchange the RFID of the Tag. The second level is to 
transmit and detect a "secure" RFID between a Tag and 
Application Processor, using the Interrogator as a "wire- 35 
less-to-wiredline" converter. The third level is the trans- 
fer of secure messages between a Tag and Application 
Processor. This can include downloading new informa- 
tion to a Tag; this is a "Read/Write" Tag where the data 
stored in memory is sensitive, i.e., cash stored on a 40 
debit card. 

Brief Description of the Drawing 

In the drawing, 45 

FIG. 1 shows a block diagram of an illustrative 
Radio Frequency Identification (RFID) system; 
FIG. 2 shows a block diagram of an illustrative Inter- 
rogator Unit used in the RFID system of FIG. 1 ; so 
FIG. 3 shows a block diagram of a Tag Unit used in 
the RFID system of FIG. 1; 
FIG. 4 shows the flow of information between the 
Tag, interrogator and the Application Processor vs. 
time during a secure message transfer; ss 
FIG. 5 shows a block diagram of how a Tag's proc- 
essor and the Application Processor processor cal- 
culate the random query response; 



FIG. 6 shows the flow of information between the 
Applications Processor, the Interrogator, and at 
least one Tag, where the Applications Processor is 
writing new information to the Tag's memory. 

Detailed Description 

One class of RFID applications involves using RFID 
technology to read information from a Tag affixed to a 
container or pallet. In this application, the container is 
moved across the reading field of an Interrogator. The 
reading field is defined as that volume of space within 
which a successful transaction can take place. While 
the Tag is in the reading field, the Interrogator and Tag 
must complete their information exchange before the 
Tag moves out of the Interrogation field. Since the Tag is 
moving through the reading field, the RFID system has 
only a limited amount of time to successfully complete 
the transaction. 

Normal Mode 

With reference to FIG. 1 , there is shown an overall 
block diagram of an illustrative RFID system useful for 
describing the application of the present invention. An 
Application Processor 101 communicates over Local 
Area Network (LAN) 102 to a plurality of Interrogators 
103-104. The Application Processor and the Interroga- 
tor functions may be present in the same device, or sep- 
arata In this disclosure we refer to the logical functions 
performed by each device. The Interrogators may then 
each communicate with one or more of the Tags 105- 
107. For example, the Interrogator 103 receives an 
information signal, typically from an Application Proces- 
sor 101 . The Interrogator 1 03 takes this information sig- 
nal and Processor 200 (FIG. 2) properly formats a 
downlink message (Information Signal 200a) to be sent 
to the Tag. With joint reference to FIGS. 1 and 2, Radio 
Signal Source 201 generates a radio signal, the Modu- 
lator 202 modulates the Information Signal 200a onto 
the radio signal, and the Transmitter 203 sends this 
modulated signal via Antenna 204, illustratively using 
amplitude modulation, to a Tag. The reason amplitude 
modulation is a common choice is that the Tag can 
demodulate such a signal with a single, inexpensive 
nonlinear device (such as a diode). 

In the Tag 105 (see FIG. 3), the Antenna 301 (fre- 
quently a loop or patch antenna) receives the modu- 
lated signal. This signal is demodulated, directly to 
baseband, using the Detector/Modulator 302, which, 
illustratively, could be a single Schottky diode. The 
diode should be appropriately biased with the proper 
current level in order to match the impedance of the 
diode and the Antenna 301 such that losses of the radio 
signal are minimized. The result of the diode detector is 
essentially a demodulation of the incoming signal 
directly to baseband. The Information Signal 200a is 
then amplified, by Amplifier 303, and synchronization 
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recovered in Clock and Frame Recovery Circuit 304. 
The Clock Recovery Circuit 304 can be enhanced by 
having the Interrogator send the amplitude modulated 
signal using Manchester encoding. The resulting infor- 
mation is sent to a Processor 305. The Processor 305 is 
typically an inexpensive 8-bit microprocessor; the Clock 
Recovery Circuit 304 can be implemented in a ASIC 
(Application Specific Integrated Circuit) which works 
together with Processor 305. The Processor 305 gener- 
ates an Information Signal 306 to be sent from the Tag 
105 back to the Interrogator (such as Interrogator 103). 
This Information Signal 306 (under control of Clock 
Recovery and Frame synchronization 304) is sent to a 
Modulator Control Circuit 307, which uses the Informa- 
tion Signal 306 to modulate a subcarrier frequency gen- 
erated by the subcarrier Frequency Source 308. The 
Frequency Source 308 could be a crystal oscillator sep- 
arate from the Processor 305, or it could be a frequency 
source derived from signals present inside the Proces- 
sor 305, such a a divisor of the primary clock frequency 
of the Processor. The Modulated Subcarrier Signal 31 1 
is used by Detector/Modulator 302 to modulate the 
modulated signal received from Tag 105 to produce a 
modulated backscatter signal, also referred to herein as 
a reflected signal. This is accomplished by switching on 
and off the Schottky diode using the Modulated Subcar- 
rier Signal 311, thereby changing the reflectance of 
Antenna 301. A Battery 310 or other power supply pro- 
vides power to the circuitry of Tag 105. 

Secure Mode 

The present invention enables a Tag and Interroga- 
tor to exchange proprietary information using MBS tech- 
nology. FIG. 4 shows the exchange of information over 
time between a Tag, Interrogator and the Application 
Processor using digital encryption techniques. The 
Interrogation of a Tag can be initiated merely by a Tag 
coming into Radio Frequency (RF) proximity of the 
Interrogator, depending on the exact service or specific 
application. In any case, the Tag senses the Interroga- 
tor's signal 401 and broadcasts its RFID 402. The Inter- 
rogator, which has no knowledge of the Tag's PIN or 
encryption key, sends the information along to the Appli- 
cation Processor, as identified by the type of ID number 
presented by the Tag. The Interrogator also generates a 
random number which it passes to both the Tag and 
Application Processor. The random number is chosen 
by the Interrogator 103 and is previously unknown to 
both the Tag and Application Processor. The Application 
Processor in turn looks up the appropriate identification 
information and, using the encryption information asso- 
ciated with the Tag's ID information, generates a 
response that is functionally based upon the RFID 
user's PIN (encryption key) and the random number 
sent by the Interrogator 405. Subsequently the Interro- 
gator has also sent the same random number back to 
the Tag 404 and expects the same functionally based 



response 406. In this scenario, further transactions are 
allowed to continue between the Tag and Application 
Processor, through the Interrogator, only if the Proces- 
sor and Tag return the same response to the random 
5 query. In this case, the Interrogator notifies the Tag and 
the Application Processor whether the transaction is 
accepted or rejected 409, 410. Note that in this sce- 
nario, no information about the Tag's PIN or encryption 
key has been transmitted anywhere in the network. The 
w encryption key is only known by the Tag and Application 
Processor, which are distributed when the Tag is issued 
Also, all data is encrypted before transmission on any 
part of the network. The only information that is not pro- 
tected is the Tag's ID number, which by itself is not use- 
rs ful to an eavesdropper and is treated as public 
information. Therefore, all three security issues outlined 
above are addressed by this method of user authentica- 
tion and subsequent data transmission. 

The security provided by the encryption method 
20 outlined here is that the response to the Interrogator's 
random number is based on a "one-way function" which 
produces the appropriate response. A one-way function 
is characterized by the fact that an eavesdropper that 
sees the output of the function cannot reconstruct the 
25 input (the secret PIN, in this case) even knowing the 
particular function. Both the Application Processor and 
the Tag use the same function, which is determined by 
the encryption key, to cipher and decipher the informa- 
tion data. FIG. 5a shows a Tag, using a one way func- 
30 tion, calculating the response to a random query. In FIG. 
5b, the lirst round" of a DES encryption process is 
shown. In a DES level one code, there are 16 coding 
rounds to encrypt 64 bits of data The exact function is 
unique to each user's database entry since it depends 
35 on the particular user's encryption key. Fa example, 
with today's technology, a 64 bit PIN can be encrypted 
using a DES level one function by a 8 bit microproces- 
sor in approximately 1 ms. Thus it is a cost effective way 
to implement digital encryption and still be able to man- 
40 ufacture simple and cheap RFID Tags. 

It is important to design system security that will be 
effective over the entire lifetime of the RFID system. As 
pointed out above, cellular network designers did not 
foresee the technical advancements and cost reduc- 
es tions of RF measurement equipment and the prolifera- 
tion of cheap, powerful and portable computers. 
Therefore, one issue that must be addressed is what 
level of security can the MBS system provide against 
future attacks? Another implementation issue that will 
so greatly effect the time response of the RFID system are 
the network and processing delays of the RF air inter- 
face and the connection to the authentication/transac- 
tion database. 

55 Secure Messages 

The previous example (FIG. 4) demonstrates how a 
Tag can exchange sensitive information with an Applica- 
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tion Processor. FIG. 6 shows how the Application Proc- 
essor can change the information stored on a 
Read/Write RFID Tag. Alter the completion of the Tag 
authentication procedures described above, the Appli- 
cation Processor may find rt necessary to change the s 
information stored on the Tag. (For example, the 
remaining total on a debit card or the air waybill on an 
airline cargo container.) In this case the Application 
Processor will digitally encrypt ail the command mes- 
sages and information messages with the "encryption w 
key" of the particular Tag. After completing all of the 
data transmission, the Tag will decrypt all of the new 
data and store it in memory. However, the RF channel is 
an unreliable medium and will generally create errors in 
the data transmission stream. Since only the endpoints 75 
of the network have the ability to decipher the informa- 
tion, unnecessary delay would be added if data, cor- 
rupted by wireless transmission, would need to be 
retransmitted between the endpoints. Since the Interro- 
gator only has knowledge of the Tag's ID and not the 20 
PIN or encryption key, it needs a mechanism to ensure 
the Tag has received all the information correctly when 
transmitting over the radio channel. 

Therefore, the Interrogator should add error detec- 
tion and/or forward error correction coding to the trans- 25 
m'rtted data. This will allow any needed retransmissions 
to be only between the Tag and Interrogator, thereby 
reducing retransmission latency. For example, the Inter- 
rogator can calculate and add a CRC byte or bytes to 
the end of each transmitted packet, allowing both error 30 
detection and limited error correction. The Tag will in 
turn calculate the CRC for each received message 
packet and only ask for retransmission of corrupted 
packets. 

Therefore, it is possible to send encrypted data 35 
between the Application Processor and a Tag without 
the need to pass encryption keys (PINs) over the wire- 
less air interface. Since all data is encrypted before 
transmission to the Interrogator over the wired line, this 
method provides end-to-end security for the MBS sys- 40 
tern. 

This leads to two immediate advantages: First, dif- 
ferent applications can use different encryption algo- 
rithms, which can depend on the level of security the 
application needs or the maximum delay time an appli- as 
cation can tolerate during information exchange. Since 
only the end points cipher, the data can be a priori 
encrypted and stored in memory thereby reducing 
latency. Second, as computers and microprocessors, 
the tools used by hostile eavesdroppers, become more so 
powerful, the encryption algorithms can gracefully be 
updated by each generation release of the MBS sys- 
tem. Since only the Tag and the particular Application 
Processor entry for the Tag need to be updated, there is 
no need to modify any other parts of the MBS system. ss 

Using the above techniques as an example, an 
inexpensive, short-range, bi-directional cfigrtaJly 
encrypted radio communications channel is imple- 
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merited. Implementation is made inexpensive by using, 
e.g., such Tag components as a Schottky diode, an 
amplifier to boost the signal strength, bit and flame syn- 
chronization circuits, an inexpensive 8-bit microproces- 
sor, subcarrier generation circuits, and a battery. Most 
of these items are already manufactured in quantities of 
millions for other applications, and thus are not overly 
expensive. 

The present invention outlines three levels of secu- 
rity for which, depending on the RFID application, an 
Application Processor, at least one Interrogator and at 
least one Tag can exchange information: The first level 
is the "Normal" mode, where a Tag and Interrogator 
exchange the RFID of the Tag. The second level is to 
transmit and detect a "secure" RFID between a Tag and 
Application Processor, using the Interrogator as a "wire- 
less-to-wiredline" converter. The third level is the trans- 
fer of secure messages between a Tag and Application 
Processor. This can include downloading new informa- 
tion to a Tag; this is a "Read/Write" Tag where the data 
stored in memory is sensitive, such as cash stored on a 
debit card. 

What has been described is merely illustrative of 
the application of the principles of the present invention. 
Other arrangements and methods can be implemented 
by those skilled in the art without departing from the 
spirit and scope of the present invention. 

Claims 

1 . A radio communications system comprising a inter- 
rogator adapted to transmit radio signals, and at 
least one tag adapted to receive radio signals from 
the interrogator, wherein: 

the tag comprises a backscatter modulator in 
receiving relationship to a source of an 
encrypted signal, the backscatter modulator 
adapted to modulate reflections of radio signals 
from the interrogator using encrypted signals 
from said source, thereby to form at least one 
reflected modulated signal; 
the interrogator comprises a demodulator in 
receiving relationship to the reflected modu- 
lated signal, such that an encrypted signal is 
obtained by said demodulator; and 
the interrogator further comprises means for 
transmitting the encrypted signal to at least one 
application processor. 

2. The radio communication system of claim 1, 
wherein: 

said at least one tag further includes a genera- 
tor of a subcarrier signal, and a subcarrier 
modulator adapted to modulate the subcanrier 
signal using the encrypted signal; and 
the backscatter modulator is adapted to modu- 



5 



EP 0 853 288 A2 



10 



late radio-signal reflections using said subcar- 
rier signal, thereby to form said reflected 
modulated signal. 

3. The radio communications system of claim 1, fur- 
ther comprising at least one application processor, 
said processor comprising: 

means for deciphering said encrypted signal, 
thereby to generate an information signal; and 
means for storing said information signal. 

4. A radio communications system comprising an 
interrogator adapted to transmit radio signals, and 
at least one tag adapted to receive radio signals 
from the interrogator, wherein: 

the tag comprises a backscatter modulator in 
receiving relationship to a source of a unique 
identifier, the backscatter modulator adapted to 
modulate reflections of radio signals from the 
interrogator using said unique identifier, 
thereby to form at least one reflected modu- 
lated signal; 

the interrogator comprises a demodulator in 
receiving relationship to the reflected modu- 
lated signal, such that said unique identifier is 
recoverable from the reflected modulated sig- 
nal; 

the interrogator further comprises means for 
generating a random challenge and for trans- 
mitting the random challenge and the unique 
identifier to at least one application processor; 
and 

the interrogator further comprises a modulator 
adapted to modulate the radio signals using the 
random challenge, and means for transmitting 
resulting modulated radio signals. 

5. The radio communications system of claim 4, 
wherein: 

said at least one application processor further 
includes means for generating a first encrypted 
response using a least said random challenge 
and using the unique identifier, and means for 
transmitting the first encrypted response to the 
interrogator; 

said at least one tag further includes means for 
generating a second encrypted response using 
a least said random challenge, and backscatter 
modulation means for modulating the reflection 
of a radio signal using the second encrypted 
response, thereby to generate a modulated 
reflected signal; and 

said interrogator further includes means for 
receiving the first encrypted response from at 
least one application processor, means for 



demodulating the modulated reflection signal 
to recover the second encrypted response, 
means for comparing the first and second 
encrypted responses, and means for accepting 
5 or rejecting results of such comparisons. 

6- The radio communications system of claim 4 or 
claim 5, wherein: 

w said at least on tag further includes means for 

generating a subcarrier signal, and means for 
modulating the subcarrier signal using the 
unique identifier, thereby to form a modulated 
subcarrier; and 

15 the backscatter modulator is adapted to modu- 

late radio-signal reflections using the modu- 
lated subcarrier. 

7. A radio communications system comprising an 
20 interrogator adapted to transmit radio signals, at 
least one tag adapted to receive radio signals from 
the interrogator, and an application processor, 
wherein: 

2s the application processor comprises means for 

transmitting a encrypted information signal to 
the interrogator; 

the interrogator is in receiving relationship to 
the application processor at least with respect 
30 to the encrypted information; 

the interrogator comprises means for adding a 
unique identifier to at least one encrypted infor- 
mation signal received from the application 
processor, thereby to form a addressed infor- 

35 mation signal; 

the interrogator further comprises means for 
adding cyclic redundant check coding to the 
addressed information signal, thereby to form a 
message signal; 

40 the interrogator further comprises means for 

modulating a radio signal with the message 
signal, thereby to form a modulated radio sig- 
nal, and means for transmitting the modulated 
radio signal to at least one tag; 

45 the tag comprises means for receiving and 

demodulating the modulated radio signal, 
thereby to recover the message signal; 
the tag further comprises means for calculating 
and removing the cyclic redundant check code 

so from the message signal, thereby to recover 

the addressed information signal; 
the tag further comprises means for removing 
the unique identifier from the addressed infor- 
mation signal, thereby to recover the encrypted 

55 information signal; and 

the tag further comprises means for storing the 
encrypted information signal. 
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8. The radio communications system of claim 7, 
wherein the tag further comprises: 

means for decrypting the encrypted informa- 
tion signal, thereby to recover unencrypted s 
information; and 

a storage medium for the unencrypted informa- 
tion. 

9. The radio communications system of claim 7 10 
wherein: 

the tag further comprises means for determin- 
ing the presence or absence of transmission 
errors based upon the cyclic redundant check is 
coding, and means for generating a negative 
acknowledgment signal in the event of such 
transmission errors; 

the tag further comprises a backscatter modu- 
lator adapted to modulate at least one reflec- 20 
tion of a radio signal using the negative 
acknowledgment signal, thereby to form a 
backscatter-modulated signal; 
the interrogator further comprises means for 
demodulating the backscatter-modulated sig- 2s 
nal, thereby to recover the negative acknowl- 
edgment signal; 

the interrogator further comprises means for 
deciding, based on content of the negative 
acknowledgment signal, whether re-transmis- 30 
sion should occur; and 

the interrogator further comprises means for 
modulating a radio signal with the message 
signal, thereby to re-transmit the message sig- 
nal. 35 

10. A method of radio communication, comprising: 

transmitting a radio signal from an interrogator 
to at least one tag; 40 
in the tag, modulating the reflection of the radio 
signal using an encrypted signal, thereby form- 
ing a reflected modulated signal; 
in the interrogator, receiving and demodulating 
the reflected modulated signal, thereby obtain- 45 
ing the encrypted signal; and 
transmitting the encrypted signal to at least one 
application processor. 

1 1 . The method system of claim 1 0, further comprising: so 

in the tag, generating a subcarrier signal, and 

modulating the subcarrier signal using the 

encrypted signal; and wherein 

the step of modulating the reflection of the ss 

radio signal is carried out using the subcarrier 

signal. 



12. The method of claim 10, further comprising, in the 
application processor: 

deciphering the encrypted signal, thereby to 
generate an information signal; and 
storing the information signal. 

13. A method of radio communication, comprising: 

transmitting a radio signal from a interrogator to 
at least one tag; 

in the tag. modulating a reflection of the radio 
signal using, at least in part, a unique identifier, 
thereby to form a reflected modulated signal; 
in the interrogator, receiving and demodulating 
the reflected modulated signal, thereby to 
recover the unique identifier; 
in the interrogator, generating a random chal- 
lenge, and transmitting the random challenge 
and the unique identifier to a least one applica- 
tion processor; and 

in the interrogator, modulating the radio signal 
using the random challenge, thereby to form a 
modulated radio signal, and transmitting the 
modulated radio signal. 

14. The method of claim 13, further comprising: 

in the application processor, generating a first 
encrypted response using a least said random 
challenge and the unique identifier; 
transmitting the first encrypted response to the 
interrogator; 

in the tag, generating a second encrypted 
response using a least said random challenge, 
and modulating the reflection of the radio signal 
using the second encrypted response, thereby 
to form the reflected modulated signal; 
in the interrogator, receiving the first encrypted 
response from the application processor, 
demodulating the reflected modulated signal to 
recover the second encrypted response, and 
comparing the first and second encrypted 
responses; and 

indicating acceptance or rejection of the result 
of the comparing step. 

15. The method of daim 13 or claim 14, further com- 
prising: 

in the tag, generating a subcarrier signal, and 
modulating the subcarrier signal using the 
unique identifier, thereby to form a modulated 
subcarrier, 

and in the tag, carrying out the step of modulat- 
ing the radio-signal reflection by using the mod- 
ulated subcarrier. 
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16. A method of radio communication, comprising: 

transmitting an encrypted information signal 
from an application processor to an interroga- 
tor; 5 
in the interrogator, adding a unique identifier to 
the encrypted information signal, thereby to 
form an addressed information signal; 
adding cyclic redundant check coding to the 
addressed information signal, thereby to form a 10 
message signal; 

modulating a radio signal with the message 
signal, thereby to form a modulated radio sig- 
nal; 

transmitting the modulated radio signal to at is 
least one tag; 

in the tag, demodulating the modulated radio 
signal, thereby to recover the message signal; 
in the tag, calculating and removing the cyclic 
redundant check code from the message sig- 20 
nal, thereby to recover the addressed informa- 
tion signal; 

in the tag, removing the unique identifier from 
the addressed information signal, thereby to 
recover the encrypted information signal; and 25 
in the tag, storing the encrypted information 
signal. 

17. The method of claim 16, further comprising: 

30 

in the tag, decrypting the encrypted information 
signal, thereby to form unencrypted informa- 
tion, and storing the unencrypted information. 

18- The method of claim 1 6, further comprising: 35 

in the tag, determining the presence or 
absence of transmission errors based upon the 
cyclic redundant check coding, and generating 
a negative acknowledgment signal in the event 40 
of said transmission errors; 
in the tag, modulating at least one reflection of 
a radio signal using the negative acknowledg- 
ment signal, thereby to form a backscatter- 
modulated signal; 45 
in the interrogator, demodulating the backscat- 
ter-modulated signal, thereby to recover the 
negative acknowledgment signal; 
deciding, based on the contents of the negative 
acknowledgment signal, whether re-transmis- so 
sion should occur; and 

modulating a radio signal with the message 
signal, thereby to retransmit the message sig- 
nal from the interrogator. 



8 



c 



EP0 853 288 A2 



FIG. 1 
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FIG. 3 
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